Ongoing spear-phishing attacks aim at stolen Windows credentials for ICS suppliers worldwide.
Steganography Anchors Pinpoint Attacks on Industrial Targets
Attackers managed to compromise NTT Communication’s Active Directory server and a construction information management server.
NTT Communications Data Breach Affects Customers, Threatens Supply Chain
The Russian spy group, a.k.a. BlackEnergy, is actively compromising Exim mail servers via a critical security vulnerability.
NSA Warns of Sandworm Backdoor Attacks on Mail Servers
Google TAG report reveals that “hack for hire” firms are tapping into the coronavirus pandemic via WHO phishing lures.
‘Hack-For-Hire’ Firms Spoof WHO To Target Google Credentials
Watchdog group said company has violated the Illinois BIPA and ‘will end privacy as we know it’ without intervention.
ACLU Sues Clearview AI Over Faceprint Collection, Sale
The DDoS group sets itself apart by using exploits — but it doesn’t always pan out.
Inside the Hoaxcalls Botnet: Both Success and Failure
Attackers compromised six Cisco VIRL-PE servers that are affected by critical SaltStack vulnerabilities.
Hackers Compromise Cisco Servers Via SaltStack Flaws
The lawsuit, filed against Google by Arizona’s Attorney General, alleges that the tech giant uses “deceptive and unfair conduct” to obtain users’ location data.
Google Location Tracking Lambasted in Arizona Lawsuit
Microsoft has warned on a new breed of patient ransomware attacks that lurk in networks for weeks before striking.
PonyFinal Ransomware Targets Enterprise Servers Then Bides Its Time
Phishing campaigns targeting enterprises in U.S. and Germany have been used to nab enterprise mailing info, passwords and certificates.
Valak Loader Revamped to Rob Microsoft Exchange Servers
Future features include plenty of self-reporting options, and officials’ fears the data could be misused.
Leaked NHS Docs Reveal Roadmap, Concerns Around Contact-Tracing App
Logins, personal information and tax info were all exfiltrated ahead of the ransomware attack, thanks to a phishing email.
Healthcare Giant Magellan Struck with Ransomware, Data Breach
The APT’s new cyber-attack tools are laid bare on three-year anniversary of WannaCry.
Feds Reveal Hidden Cobra’s Trove of Espionage Tools
Cybercriminals used the REvil ransomware to attack a law firm used by the likes of Lady Gaga, Drake and Madonna. Now, they’re threatening to leak the 756 gigabytes of stolen data.
REvil Ransomware Attack Hits […]
Important-rated EoP flaws make up the bulk of the CVEs; SharePoint continues its critical run with four worrying bugs.
Microsoft Addresses 111 Bugs for May Patch Tuesday
Severe CSRF to XSS bugs open the door to code execution and complete website compromise.
WordPress Page Builder Plugin Bugs Threaten 1 Million Sites with Full Takeover
Adobe patched 36 flaws, including critical vulnerabilities in Acrobat and Reader and its DNG Software Development Kit.
Adobe Kills 16 Critical Flaws in Acrobat and Reader, Digital Negative SDK
Photo print service Chatbooks has disclosed a data breach after customers’ emails, passwords and more were listed for sale on underground forums.
Chatbooks Confirms Breach After ‘Shiny Hunters’ Sell Data
- Load More